Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Allowing Internet Access through SSL VPN (WebVPN)

I have my ssl vpn working on my 1821 router. I login and can move through my internal network. However when I am connected I cannot browse Internet web pages....looks like maybe a DNS issue? when I try to ping it looks like it resolves the name just does not pass any traffic.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Allowing Internet Access through SSL VPN (WebVPN)

Are you trying to tunnel all the internet traffic through the SSL VPN as well, or you are doing split tunneling?

For split tunneling, here is the sample config:

http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htwebvpn.html#wp1056267

(you would need to add the "svc split include ")

Hope that helps.

5 REPLIES
Cisco Employee

Re: Allowing Internet Access through SSL VPN (WebVPN)

Are you trying to tunnel all the internet traffic through the SSL VPN as well, or you are doing split tunneling?

For split tunneling, here is the sample config:

http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htwebvpn.html#wp1056267

(you would need to add the "svc split include ")

Hope that helps.

Community Member

Re: Allowing Internet Access through SSL VPN (WebVPN)

I am actually just trying to allow users who are connected through the ssl tunnel to be able to browse internet websites. Currently internal uses can browse fine and ssl clients can browse internal network with no issues they just cannot get to the internet through the ssl tunnel.

Cisco Employee

Re: Allowing Internet Access through SSL VPN (WebVPN)

Easiest is to configure split tunneling as per advised earlier:

For split tunneling, here is the sample config:

http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htwebvpn.html#wp1056267

(you would need to add the "svc split include ")

I assume that you already configure NAT exemption for traffic between the internal subnet and the ssl vpn pool subnet.

Silver

Re: Allowing Internet Access through SSL VPN (WebVPN)

when you configure split tunneling, only traffic destined to your internal networks will be tunneled through the ssl vpn. All other traffic will be passed through your clients normal internet connection. So when a client is connected to ssl vpn with split tunneling he will be able to get to the internet as he normally does.

Please follow the steps given by halijenn for split tunneling.

Community Member

Re: Allowing Internet Access through SSL VPN (WebVPN)

That all worked perfectly thank you. Now I just have to get Windows 7 to work with the SSL and all is good.

509
Views
0
Helpful
5
Replies
CreatePlease to create content